java - SSL TCP connection on Android (with cert) -


i'm new on android platform, coming .net world. need write tcp/ssl client class in app, send/recieve text messages java server. need use server public certificate (.cer file) in communication. in c# have sslstream class job, , lot of examples it. android (lolipop) cannot find examples on subject, without http protocol on top. hint appreciated.

below basially steps create ssl connection in android :

step 1 : public key of ur server (.cert file), have.

step 2: create keystore via bouncycastle jar

below commands :

keytool -importcert -v -trustcacerts -file "path_to_cert/interm_ca.cer" -alias intermediateca -keystore "res/raw/mykeystore.bks" -provider org.bouncycastle.jce.provider.bouncycastleprovider -providerpath "path_to_bouncycastle/bcprov-jdk16-145.jar" -storetype bks -storepass mysecret

verify if certificates imported correctly keystore:

keytool -list -keystore "res/raw/mykeystore.bks" -provider org.bouncycastle.jce.provider.bouncycastleprovider -providerpath "path_to_bouncycastle/bcprov-jdk16-145.jar" -storetype bks -storepass mysecret

should output whole chain:

rootca, 22.10.2010, trustedcertentry, thumbprint (md5): 24:77:d9:a8:91:d1:3b:fa:88:2d:c2:ff:f8:cd:33:93intermediateca, 22.10.2010, trustedcertentry, thumbprint (md5): 98:0f:c3:f8:39:f7:d8:05:07:02:0d:e3:14:5b:29:43

now can copy keystore raw resource in android app under res/raw/

step 3:

create httpsclient below , query service client :

public class httpsclient extends defaulthttpclient {      final context context;      public httpsclient(context context) {         this.context = context;     }      @override     protected clientconnectionmanager createclientconnectionmanager() {         schemeregistry registry = new schemeregistry();         registry.register(new scheme("http", plainsocketfactory                 .getsocketfactory(), 80));         // register port 443 our sslsocketfactory our keystore         // connectionmanager         registry.register(new scheme("https", newsslsocketfactory(), 443));         return new singleclientconnmanager(getparams(), registry);     }      private sslsocketfactory newsslsocketfactory() {         try {             // instance of bouncy castle keystore format             keystore trusted = keystore.getinstance("bks");             // raw resource, contains keystore             // trusted certificates (root , intermediate certs)             inputstream in = context.getresources().openrawresource(                     r.raw.mykeystore);             try {                 // initialize keystore provided trusted                 // certificates                 // provide password of keystore                 trusted.load(in, "mysecret".tochararray());             } {                 in.close();             }             // pass keystore sslsocketfactory. factory             // responsible             // verification of server certificate.             sslsocketfactory sf = new sslsocketfactory(trusted);             // hostname verification certificate             sf.sethostnameverifier(sslsocketfactory.allow_all_hostname_verifier);             return sf;         } catch (exception e) {             throw new assertionerror(e);         }     } }

the above case holds true connection on http , if need have connection without http , keystore procedure remains same , need use sockets open , close connection :

string keystorepath = "absolute path jks keystore file"; string keystorepass = "keystore password";  system.setproperty("javax.net.ssl.keystore", keystorepath); system.setproperty("javax.net.ssl.keystorepassword", keystorepass);  sslserversocketfactory sslserversocketfactory = (sslserversocketfactory) sslserversocketfactory.getdefault(); sslserversocket serversocket = (sslserversocket) sslserversocketfactory.createserversocket(port_number);  while (true) {     new clientthread((sslsocket) serversocket.accept()).start(); }

Comments

Post a Comment

Popular posts from this blog

asp.net mvc - SSO between MVCForum and Umbraco7 -

i need integrate sso between mvcforum (forum of company) , umbraco7 (manages cms company). however struggling shared authentication work. tried several ways suggested on other threads still not running expected. here did: 1. in mvcforum (forum.mywebsite.com) 1.1. machine key in web.xml: <machinekey validationkey="the same key umbraco7" decryptionkey="the same key umbraco7" validation="sha1" decryption="aes" /> 1.2. authenticate forms in web.xml <forms name="my-sso-auth" protection="all" path="/" timeout="43200" domain="forum.mywebsite.com" loginurl="/members/logon" enablecrossappredirects="true" /> 2. in umbraco7 (news.mywebsite.com) 2.1. machine key in web.xml: <machinekey validationkey="the same key mvcforum" decryptionkey="the same key mvcforum" validation="sha1" decryption="aes" /> 2.2. a
Read more

Python Tkinter keyboard using bind -

i have problem using bind option can click button in keyboard, , call function once key pressed. tried taking other codes have similar purpose , saw i'm doing pretty same, though still have problem must've missed. thankful if me this. here's code: # -*- coding: utf-8 -*- #imports tkinter import * pil import imagetk, image import time import tkmessagebox #===========================================================================================================================================# #tkinter class class app(frame): def __init__(self, master=none): frame.__init__(self, master) self.pack() #===========================================================================================================================================# #game pieces classes class board: def __init__(self, rows = 7, columns = 6, picture_height = none, picture_width = none): self.rows = rows self.columns = columns self.picture
Read more

ubuntu - Selenium Node Not Connecting to Hub, Not Opening Port -

i'm trying set demo selenium grid. have digital ocean ubuntu 14.02 droplet. (i have 2 , tried set using 2 different machines got nowhere.) i'm trying run hub , node both locally. here input both hub, node, , nmap results. https://gist.github.com/mekhami/d5bbecca5ff0de9d2dc9 so, node starting tcp connection reset , port it's supposed operate on closed. i have had no luck in number of different options , configurations work. but... of course, worked randomly once. don't know why, don't know did, know 1 brief moment, node connected , saw on grid console. tried run test , went down again , i've never seen come up. please let me know more information can provide. update: randomly came online again. don't know happened, might related timeout or time_wait or going on. this because vm/server not have enough entropy available. to resolve problem, install haveged (or other similar things). the instructions of how install haveged on ubu
Read more